================================================ Subject: Re: Another one for Win2K and NT users From: "]\\[][G}{T§TÖ®]v[" To: Date: Thu 9 Aug 2001 17:13:08 -0400 ================================================ Hmm... funny you should say that... last I checked, a DoS attack had nothing to do with attachments, or opening them. Since most chat servers and websites get taken down by a DDoS attack (Distributed Denial Of Service), I don't see what attachments has to do with it (I doubt that a webpage or a chat server is going to open an attachment) (just teasing a bit there). DoS attacks and Memory Overflow attacks are both forms of attacks focused on a single computer, or a single IP (in some cases, an entire IP domain), sent in the form of "packets". A person doesn't have to open anything to be victim to these attacks, as they aren't sent by e-mail or any other common form. In a lot of cases, it's just sending massive amounts of data or info to a single computer to the point that the modem can't do anything else BUT process the attacking packets. A good explanation of DDoS attacks and such are at Steve Gibson's site (http://www.grc.com) and it explains in simple terms how the attacks work, and how they're sent in the first place (or one example of it, that is). I see where you were going with the VBS comment and such, but I think you got confused between what the virus warning was saying (that I sent) and Jim's reply, as they were covering two separate subjects. I remember seeing on a info website about a month ago that there is a patch available for OE5 and Outlook2000 that basically does the same thing as what you mentioned for Outlook2002, but I don't think I would ever actually install it, since (according to the info page) once you put the patch to use, you can't get rid of it unless you reinstall the entire mail program... and occasionally I actually need to receive a VBS file, and this would kinda screw that up. My best advise to anyone would be to skip the patch, and just use common sense for a change. If you don't know what it is, then (as you said) don't open the damn thing. If you think you might know what it is, e-mail the person that sent it to you and confirm first that they actually intentionally sent it. Scan the damn thing first, before running it... and when I say "scan it first", I mean with an up-to-date virus scanning program (one woman in the town where we're moving to has an editorial column in the local paper, and last week she was whining about how she got infected with the whole Snow White e-mail, which contained something like the Magistr.e virus or whatever it was, and how pissed off she was... then she commented on how she probably should have updated the virus scanner that came with her computer when she bought it 2 years ago... duh). The only way to really defend against DoS attacks and such is to either have a real good firewall or keep up on the patches that Jim mentioned, which will install a filter of sorts for that form of attack (kinda like when Microsoft FINALLY clued into the whole /con/con exploit, and released a patch that filtered out that flaw). Unfortunately, the Microsoft Security Updates rarely include a patch of any sort for DoS attacks... they put one out about 2 years ago that fixed the ICMP packet hole, but haven't really been keeping up on it too much... they seem real busy patching their mail programs though, which (I guess) is a plus for them. ¤]\[][G}{T§TÖ®]v[¤ http://NightStorm.isyourgod.com/ NightStorm_Draco_@hotmail.com NightStorm_Draco@creedlist.com NightStorm@isyourgod.com I've seen the wicked fruit of your vine, Destroy the man who lacks a strong mind Human pride sings a vengeful song Inspired by the times you've been walked on My stage is shared by many millions, Who lift their hands up high because they feel this We are one We are strong, The more you hold us down the more we press on What if you did? What if you lied? What if I avenge? What if eye for an eye? ----- Original Message ----- From: Kevin L. Brown To: Sent: Wednesday, August 08, 2001 6:59 PM Subject: Re: Another one for Win2K and NT users > The "patch" for these is to not open attachments you don't know. > > Or upgrade to Outlook 2002 in Office XP as it won't let you open an > attachment with a VBS extension. > > ----- Original Message ----- > From: "Creed - 7M3 - Live" > To: > Sent: Wednesday, August 08, 2001 3:30 PM > Subject: Re: Another one for Win2K and NT users > > > The greatest thing about it is that there are quickly developed patches > > for ones like denial of service or memory overflow attacks. > > > > If there are certain protocols that are at danger. They will let you > > know. The FTP protocol was at danger and recommendations of not allowing > > FTP access to your machine was suggested. I believe that the last patch > > to thier kernel cleared up the vulnerability. > > > > If you have a CD burner and a quick connection. You can get the ISO > > images for free. There are several sites that you can get images from. > > > > I like the ability to use either one at will. > > > > Later, > > > > Jim To unsubscribe or change your preferences for the Creed-Discuss list, visit: http://www.winduplist.com/ls/discuss/form.asp